I am seeking an offensive security role where I can plan and execute end-to-end red team and penetration testing engagements, identify and validate complex vulnerabilities, develop business-impact proof-of-concepts, and continuously enhance my technical expertise by building realistic labs, attack simulations, and CTF environments.
Arya Pokharel
@aryapokharel1
Penetration tester and red teamer with 4 years’ experience delivering PoC exploits and vulnerable labs.
What I'm looking for
I’m an offensive security professional and penetration tester with 4 years of hands-on experience in penetration testing, red teaming, and security curriculum development. I have identified and validated vulnerabilities across web applications and enterprise environments, including SQL injection, SSRF, Remote Code Execution (RCE), and Prototype Pollution, delivering clear proof-of-concept demonstrations to support remediation efforts.
Beyond assessments, I design and build intentionally vulnerable labs and CTF platforms that replicate real-world attack scenarios for practical training. I enjoy working across the full engagement lifecycle—from scoping and manual testing to exploitation, technical reporting, and remediation discussions—while continuously expanding my expertise in application security and offensive security.
Experience
Work history, roles, and key accomplishments
Penetration Tester
Private Engagements
Jan 2025 - Present (1 year 6 months)
Conducted web and mobile penetration tests for enterprise clients, validating and exploiting vulnerabilities including SQLi, SSRF, prototype pollution, and RCE with business-impact PoCs. Managed the full engagement lifecycle under NDA, including scoping, manual exploitation, report writing, and debriefs for remediation.
Offensive Security Professional
Softwarica College Of IT And E-Commerce
Nov 2022 - Present (3 years 8 months)
Identified and validated web application vulnerabilities, through manual penetration testing. Developed proof-of-concept exploits and documented remediation guidance.
Penetration Tester
Bugv
Aug 2022 - Nov 2022 (3 months)
Validated vulnerabilities across web applications and authored exploitation documentation for client-facing security reports.
Education
Degrees, certifications, and relevant coursework
Coventry University
Bachelor of Science (Honours), Ethical Hacking and Cyber Security
2019 - 2022
Grade: First Class Honors
Earned a B.Sc (Hons) in Ethical Hacking and Cyber Security, graduating with First Class Honors.
Tech stack
Software and tools used professionally
Availability
Location
Portfolio
github.com/aryapokharel2000Salary expectations
Social media
Interested in hiring Arya?
You can contact Arya and 90k+ other talented remote workers on Himalayas.
Message AryaGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
